EMC Unity Auditing
You can use Netwrix Auditor to audit EMC Unity storage systems deployed in your infrastructure. Netwrix Auditor uses EMC native audit technologies and approaches. The procedures in this article explain how you can configure your NAS Server and Netwrix Auditor to collect audit data.
Configuring NAS Server
-
In NAS Server configuration check the following in the Sharing Protocols section:
- a. The Windows Shares (SMB, CIFS) option is selected.
- b. The Join to the Active Directory domain option is selected.
-
Then use the EMC Unity/VBX/VNXe NAS Management utility to enable Audit object access policy (both Success and Failure).
Alternatively, you can follow the steps described in the Dell Data Storage – Configure Audit Object Access Policy ⸱ v10.6 article: https://docs.netwrix.com/docs/auditor/10_8/configuration/fileservers/delldatastorage/overview -
Ensure that EMC Unity logging options are configured in the NAS Server settings.
NOTE: To configure maximum log size to be processed by Netwrix Auditor, follow the steps described in the Dell Data Storage – Configure Security Event Log Maximum Size ⸱ v10.6 article: https://docs.netwrix.com/docs/auditor/10_8/configuration/fileservers/delldatastorage/overview
Configuring Netwrix Auditor
-
Configure a monitoring plan for data collection from the storage system, as described in Netwrix Auditor documentation for EMC storage systems.
-
When adding an item to be monitored by this monitoring plan, select EMC VNX/VNXe item type.
-
Ensure the account you plan to use for data collection has the following rights and permissions on the target NAS Server:
- a. Read share permissions on the audited shares
- b. Membership in the local Administrators group
For more information, refer to Netwrix Auditor documentation.